No Golden Padlock after Encryption

[PL-MSTech]

I am running into an issue with Bitlocker not giving the golden key after I encrypt the drive. What could be causing this? When I go into the actual machine and check disk management it will show that it is Bitlocker encrypted. Additionally, our Volume List isn't updating correctly. It'll show something is encrypted but then will show that the protector is still off. We are running the latest plugin version which was supposed to remedy this issue.

[Cubert]

Can you post your build number here for me? Lets make sure your on the latest build

[Cubert]

Can you scroll your list to the right -> (See Key Protector Column)

I believe the reason you're seeing two or more of the same drive in the list is that there are multiple protectors connected to the volume. For example, if you have TPM as a key protector for an encrypted volume and then add a recovery password to the same volume, you will now have two keys and two entries in this list.

You could technically have many entries in this list, as each key protector / volume pair will produce an entry in the list.

[Cubert]

The lock issue we have been aware of but as yet we not found out why. In all testing we do it should be changing but does not. You know that the plugin has the correct data as the number counters on top of plugin shows (in your image) 6 volumes encrypted and 6 agents using encryption.

I looks like it is a bug in the "Tree Widget" where it will use the default image if it can not interperate the status "Fully Encrypted".

I will look at this again and see if we can narrow it down.

[PL-MSTech]

We are on 1.0.0.18

So... some of those drives do have a KeyProtectorId on one line and a KeyProtectorId+RecoveryPassword on the other line for the same drive.
Others may have the drive listed 4 times, with no protectors on one line, KeyProtectorIds on 2 lines and KeyProtectorIds+RecoveryPassword on the other line.

Some clients were encrypted before we started using the plugin, and some have their own IT staff who are responsible for doing the encryption, but would like for us to be able to view/monitor the status... is there not a way for your plugin to show the status as well as all keys and passwords regardless of how they were encrypted/enabled?

Thanks

[Cubert]

**That is exactly what it does.**

The plugin is designed to query all agent volumes and all existing key protectors for each agent you enable.

It does not work on Windows Home Editions, as they do not support BitLocker.

A key protector has a special ID in the list. This is a unique value for the key protector of a given agent volume. You may have many key protectors per agent volume. A recovery password is a key protector, and so are passwords, TPM, PIN, Startup Key, etc.

If a previous company applied a password or PIN code key protector to a volume, then we will see the key ID but not be able to pull the password or PIN code. If you use our plugin to add passwords or PIN codes, we save that data for you in the database along with its key protector information and ID.

When you export the volume list, we also export every key protector along with volumes. You may have 3 or 4 protectors per volume. To know if they are truly duplicates, the key protector ID will be the same for 2 or more entries. If key protectors are all unique, then you have no duplicate keys/volume pairs.

The gold image issue is not because the agent is reporting incorrectly. It is due to a looping issue in the tree view widget. It is intermittent and doesn't always happen, which is why we haven't found a fix when people report it happening to them.

[Cubert]

We are about to release BitLocker-1.0.0.19

We have updated a good portion of the process smoothing out some rough edges.

Have a look at our latest video,


https://www.youtube.com/watch?v=1brxpiTvZj4